Author: Konkretor

gitlab ldap groups

/ Konkretor / Leave a comment

It´s not very easy to understand with the ce edition.

 

Here is my working config with gitlab ce 10

Before you edit your gitlab.rb please make a backup

 cp /etc/gitlab/gitlab.rb /etc/gitlab/gitlab.rb_org

 

Please remember your are editing a yaml file, yaml files are sensitiv for spaces etc

gitlab_rails[‘ldap_enabled’] = true

gitlab_rails[‘ldap_servers’] = YAML.load <<-EOS # remember to close this block with ‘EOS’ below
main:
label: ‘ActiveDirectory’
host: ‘dc01.example.com’
port: 389 #Change to 636 if using LDAPS
method: ‘plain’ # Change to “tls” if using LDAPS
uid: ‘sAMAccountName’ # Don’t change this
bind_dn: ‘CN=gitlab,OU=users,DC=example,DC=com’
password: ‘mypassowrd’
timeout: 10
active_directory: true
allow_username_or_email_login: false
block_auto_created_users: false
base: ‘DC=example,DC=com’
# Optional: the next line specifies that only members of the user group “gitlab-users” can authenticate to Gitlab:
user_filter: ‘(memberOf=CN=grpGitlab,OU=Application,OU=Servers,DC=example,DC=com)’
EOS

 

 

Attention i have tried a lots of user_filter examples there variants are working for me.

Check your LDAP Access and Group Members


gitlab-rake gitlab:ldap:check

Most found there

https://www.caseylabs.com/setup-gitlab-ce-with-active-directory-authentication/

Redirect to the Remote Web Access pages (/RDWeb)

/ Konkretor / Leave a comment

Arjan Mensch's avatarmsfreaks

If you have published Remote Desktop Web Access out of the box, and you visit
http(s)://<url for remote desktop web access>, you’ll be presented with the IIS welcome page:
IIS Welcome page

To prevent this you need to redirect the root to /RDWeb.

On the RD Web Access server(s) open Internet Information Services (IIS) Manager (it’s under Administrative Tools).
Expand the tree and click Default Web Site, then open the “HTTP Redirect” app:
HTTP Redirect
Fill in the redirect path, don’t forget to check “Only redirect requests to content in this directory”, and click apply.

That’s it. No need to reset IIS. This is tested to be working on Windows 2012 and Windows 2012 R2 versions of RD Web Access.

As an added bonus, HTTP requests are redirected to HTTPS as well.

Arjan

View original post

How to deploy Remote Desktop Services 2012 R2 Certificates using internal CA #RDS

/ Konkretor / Leave a comment

Al Schneiter's avatar

Hi –  It’s me, Al

Blog post updated: July 19th 2017

Remote Desktop Services (RDS) on Windows Server 2012 R2 is now on market since a while. Let’s have a look at the 2012 R2 Certificate configuration (for a Lab).

First we have to create a template on the internal Certificate Authority (CA). We use a Workstation Authentication Template for that. Open your CA Manager – Cartificate Templates – Manage

Duplicate the “Workstation Authentication” Template.

View original post 448 more words

Redmine repository 404 not found

/ Konkretor / Leave a comment

We look in to redmine production.log file an see follow error

 

git: error during get default branch: Couldn’t find all GitCaches with ‘id’: (last, {:order=>”created_at DESC”}) (found 0 results, but was looking for 2)
Completed 404 Not Found in 361ms (ActiveRecord: 66.9ms)

What can i do to fix this issue?

Gitolite upgrades can change /home/git/.gitolite.rc this file.

Than can happend, that you have a UMASK 0077 thats wrong, you need 0022

1507295433507-184.png

Thats all

Edit:

Another Solution is

setfacl -R -m u:git:rX /home/git/repositories/

 

Hint found here

http://www.fabianfier.de/blog1.php/redmine-shows-404-error-on

https://stackoverflow.com/questions/7086325/setting-umask-in-git-gitolite

Replacing the IWSVA Admin Web Interface SSL Certificate

/ Konkretor / Leave a comment

alpacapowered's avataralpacapowered

Since documentation on this by Trend Micro is pretty sparse and I’ve had to do this on a number of systems recently, I’ll document the process of replacing or adding a certificate for the IWSVA Admin Web Console with a new CA-signed one here.

Note: This documentation is NOT for replacing the IWSVA SSL-Inspection certificate, though similarities may exist.
I’ve done this successfully on IWSVA 5.6 and 6.5, the process should work without issues on IWSVA 6.0 as well.

The whole process of requesting/creating/converting the SSL certificate described here mainly involves openssl commands and can be done from the IWSVA root shell. I also generally recommend to create at least the certificate public/private key pair always on the system that will in the end host the certificate. This reduces the risk of getting the private key compromised when you create key pairs on a different system and then have to…

View original post 1,183 more words

InterScan Web Security Virtual Appliance (IWSVA) 6.5 performance problem

/ Konkretor / Leave a comment

We had some trouble with IWSVA to use the full download speed from our internet connection. Downloads are limit to 5 MB per second and not faster. After contactig support and a remote session. The support send me this solution.

After this, we can use our full internet speed with IWSVA

 

[Findings]

From @sysctl.conf in CDT:
——————-
net.ipv4.tcp_window_scaling=0
——————–

By default, in IWSVA, window scaling is disabled.

[Suggestion]

– Set the TCP Windows Scaling from 0 to 1.

  1. Login IWSVA shell

 

  1. Open /etc/sysctl.conf

 

  1. Find and change the following parameter to the coresponding value.

————————-

net.ipv4.tcp_window_scaling=1

————————-

  1. Run command “sysctl -p”

InterScan Web Security Virtual Appliance (IWSVA) 6.5 default password

/ Konkretor / Leave a comment

hamdan2020's avatarHamdan2020 Blog

After downloading latest software and patch for TrendMicro InterScan Web Security Virtual Appliance (IWSVA) 6.5 SP2 ( latest version ) on 25 Nov 2015 at URL –> http://downloadcenter.trendmicro.com/

This website actually for those have proper Trend License only.The worst case part is Trend micro itself not telling everybody about default password .BTW,

Here is default username : admin 

password is “adminIWSS85″

View original post 108 more words